Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
File: XTTdv33KsQy_aCKXkh61gS2QUHE.mft (raw, json)
Hash identifier: VlNUxW8Fguw1KWIYQx9fKIpUVNndoVngXz6PncJRtik=
Subject key identifier: C1:24:A8:61:1B:02:9A:08:01:02:40:E9:F5:4A:01:0D:F8:DC:55:47
Authority key identifier: 5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
Certificate issuer: /CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Certificate serial: 019921B0F3E032A1A8295A2DCE98A519E3C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
Manifest number: 056F
Signing time: Sun 07 Sep 2025 01:01:08 +0000
Manifest this update: Sun 07 Sep 2025 01:01:08 +0000
Manifest next update: Mon 08 Sep 2025 01:01:08 +0000
Files and hashes: 1: S6aYdrXE8VeCcP5w8D7hhhcOGoc.roa (hash: csN/l/mC6C7LyFwDFQUEKU3wX0HgZWqjImlEztzBO3Q=)
2: XTTdv33KsQy_aCKXkh61gS2QUHE.crl (hash: WN0zDjhZ13Fu8EQd2xd6YwUVcZHQnbFH1ICH5eUCSGE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b0:f3:e0:32:a1:a8:29:5a:2d:ce:98:a5:19:e3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d34ddbf7dcab10cbf682297921eb5812d905071
Validity
Not Before: Sep 7 01:01:08 2025 GMT
Not After : Sep 8 01:01:08 2025 GMT
Subject: CN=c124a8611b029a08010240e9f54a010df8dc5547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:de:12:7a:2f:8b:8a:04:74:e1:fb:1a:f5:5f:
06:4e:a3:b2:b2:81:dc:eb:6b:21:f9:9a:ca:b0:54:
f9:b5:19:66:e2:b4:de:a4:02:e6:2c:4d:90:36:b5:
79:63:11:4d:8b:69:4a:3d:1e:3a:70:20:f9:02:ef:
7f:2d:80:c4:09:79:b7:c8:8c:07:33:e7:d4:0e:ff:
1a:bd:0d:c6:4c:6f:81:9f:c7:fc:52:d2:4b:c4:eb:
43:99:97:57:24:42:fb:9e:5e:6b:46:f4:c7:10:d2:
f7:15:cf:9b:2c:00:23:cb:e1:6f:6d:52:22:a1:4d:
9e:e4:98:9e:11:2e:3f:6b:48:a8:fe:6a:d0:d6:1e:
4f:0c:31:f4:4b:e2:38:60:08:43:d3:a2:29:15:89:
d1:ae:55:7f:67:5b:93:9d:e7:f5:51:0d:c8:16:b8:
e5:fc:3a:12:70:a4:ac:0b:18:a9:bf:84:06:6e:c9:
70:84:f5:9b:fb:92:43:df:80:eb:5a:c9:ad:53:76:
80:9e:88:80:3b:84:dd:22:de:b3:77:98:66:37:99:
db:b3:58:fb:b9:9c:55:8b:e2:b4:47:84:8e:31:21:
9b:cc:6d:d2:16:ad:d5:8f:10:64:66:ce:6c:f5:b2:
7c:38:23:46:47:fe:94:80:d7:f4:e6:52:59:b8:5f:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:24:A8:61:1B:02:9A:08:01:02:40:E9:F5:4A:01:0D:F8:DC:55:47
X509v3 Authority Key Identifier:
keyid:5D:34:DD:BF:7D:CA:B1:0C:BF:68:22:97:92:1E:B5:81:2D:90:50:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTTdv33KsQy_aCKXkh61gS2QUHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1970d-9f7e-4c4a-8b04-5cee6d5f1a12/1/XTTdv33KsQy_aCKXkh61gS2QUHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:37:19:f1:f9:37:00:1c:cb:93:cf:04:45:33:9b:d5:1a:fb:
e8:82:68:57:56:2c:81:50:74:4d:40:c2:7b:a1:48:6a:b7:d8:
c0:01:3f:99:a6:dc:f6:28:d5:c6:9e:6e:84:ac:31:9e:3a:30:
96:b1:15:1c:ac:de:2d:4d:66:78:d1:87:c8:2a:7c:a9:90:7b:
3b:9c:ec:6b:17:8f:85:8d:00:bf:d2:03:b4:e3:5b:73:94:7b:
8a:33:d9:c2:10:55:27:30:f5:3f:a2:ca:3d:46:48:ed:0d:56:
a3:33:82:b9:7c:01:0f:65:e5:05:fe:27:92:97:d0:79:8f:ae:
e6:88:b0:f4:ad:7e:94:ff:05:59:59:4b:be:be:8a:a1:d2:05:
94:4b:28:81:c7:2f:61:f3:37:a6:76:71:12:de:c6:b9:eb:27:
c8:a2:81:69:66:04:b5:80:d3:1b:24:0e:72:32:58:1b:53:0e:
7f:18:e7:ad:9a:11:b9:4c:a5:08:f2:d5:4b:2e:f7:fd:79:07:
ae:2a:04:71:5a:42:95:e3:2d:b0:bf:6c:8b:2f:a2:76:96:8c:
62:98:3d:58:ad:07:82:27:50:81:57:78:39:ad:9f:cb:73:e2:
80:de:36:5d:be:74:fb:b3:7d:a6:d8:ff:8d:ea:a6:d7:72:d5:
da:62:db:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:39:26 2025 by rpki-client